Am reposting, Redirect Search and something going on with Yahoo?

Re: Redirect Search and something going on with Yahoo?

Welcome to Majorgeeks!

Please run ALL steps in the READ & RUN ME. At a minimum I can see you skipped step 6. You must run step 6 and attach the two logs before step 7 (HJT) is run.

Do you know who the below file belongs to:
O2 - BHO: (no name) - {A3E609B5-6860-47EC-A095-045D0A1DF570} - C:\WINDOWS\system32\HpHipa32.dll

Check file Properties and Version info on C:\WINDOWS\system32\HpHipa32.dll

Locate it using Windows Explorer and then right click on it and select Properties. Now see if there is a Version tab in the window. If so, select the Version tab and on the next window select each of the listed Item names (one at a time) to get more info about the file. The most important Item is the company name. If there is no Version tab, tell me that too.

 

Merged the 2 threads to keep any info Chas needs together.

 

Re: Redirect Search and something going on with Yahoo?

Make sure viewing of hidden files is enabled (per the tutorial).

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: (no name) - {A3E609B5-6860-47EC-A095-045D0A1DF570} - C:\WINDOWS\system32\HpHipa32.dll

After clicking Fix, exit HJT.:

Now we need to Reset Web Settings:

1. If you have an Internet Explorer icon on your Desktop, goto step 2. If not, skip to step 3.
2. Now right click on your desktop Internet Explorer icon and select Properties. Then click the Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK. Then skip step 3.
3. If you do not have an Internet Explorer icon on your Desktop, click Start, Control Panel (for some systems it may be Start, Settings, Control Panel), Internet Options, Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK.

Now reboot your PC ( in normal mode )and post a new HJT log.

Make sure you tell me how things are working now.

If you are still having problems, run the below Ewido scan and attach the requested log:

Running Ewido Anti-Malware

 

Please describe "something".

 

It does not appear to be a malware problem, but let's dig deeper before sending you to the Software Forum.

What is the below for?
O4 - HKLM\..\Run: [MegaPanel] C:\Program Files\ACNielsen\Homescan Internet Transporter\HSTrans.exe

Let's get an installed programs list from HijackThis too!

• Run HijackThis, click Open the Misc Tools section
• Click Open Uninstall Manager
• Click Save List (generates uninstall_list.txt)
• Click Save, to save it to a file where you can find it.
• Attach the uninstall_list.txt file to your next message.

Please run the Ewido scan I suggested and attach the log.

 

I still do not see any malware problems!

You do need to uninstall the below old Sun Java versions though:
Java 2 Runtime Environment Standard Edition v1.3.1_03
Java 2 Runtime Environment, SE v1.4.0
Java 2 Runtime Environment, SE v1.4.1_02
Java 2 SDK, SE v1.4.0

I would suggest you either disable or uninstall (only temporarily) your ZoneAlarm firewall and see if you still have problems.